This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0f/ade856-8960-4a29-8956-9fe7d928d9be/1/rJKcaNGOpOiZ0iciVQt-oX04cPI.roa File: rJKcaNGOpOiZ0iciVQt-oX04cPI.roa (raw, json) Hash identifier: BT7ocoNehLiRKdELBQmLzdxfWaOUS/P7hDDrN7lDDSY= Subject key identifier: AC:92:9C:68:D1:8E:A4:E8:99:D2:27:22:55:0B:7E:A1:7D:38:70:F2 Certificate issuer: /CN=68bd10f1b14bbb2767ffdcaec4b4172880ba461a Certificate serial: 019B783462FFF348F7474F91A902F8E34F10 Authority key identifier: 68:BD:10:F1:B1:4B:BB:27:67:FF:DC:AE:C4:B4:17:28:80:BA:46:1A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aL0Q8bFLuydn_9yuxLQXKIC6Rho.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0f/ade856-8960-4a29-8956-9fe7d928d9be/1/rJKcaNGOpOiZ0iciVQt-oX04cPI.roa Signing time: Thu 01 Jan 2026 06:17:37 +0000 ROA not before: Thu 01 Jan 2026 06:17:37 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 7018 IP address blocks: 193.107.40.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0f/ade856-8960-4a29-8956-9fe7d928d9be/1/aL0Q8bFLuydn_9yuxLQXKIC6Rho.crl rsync://rpki.ripe.net/repository/DEFAULT/0f/ade856-8960-4a29-8956-9fe7d928d9be/1/aL0Q8bFLuydn_9yuxLQXKIC6Rho.mft rsync://rpki.ripe.net/repository/DEFAULT/aL0Q8bFLuydn_9yuxLQXKIC6Rho.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 19 Jan 2026 03:00:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:78:34:62:ff:f3:48:f7:47:4f:91:a9:02:f8:e3:4f:10 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=68bd10f1b14bbb2767ffdcaec4b4172880ba461a Validity Not Before: Jan 1 06:17:37 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=ac929c68d18ea4e899d22722550b7ea17d3870f2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8c:6f:64:53:c8:2f:5a:ca:b4:ba:cf:63:3e:44: f7:40:d1:c1:f6:ff:10:f7:70:2d:a0:82:4e:48:0b: fd:71:57:1e:8f:a8:a6:2b:b1:d7:9d:26:d0:4b:4c: 90:89:40:07:ce:cb:8a:93:77:28:12:ba:fc:2e:f3: 9f:0c:0c:b8:de:62:5a:93:59:88:d2:7f:aa:12:d6: 3b:73:b3:0b:7a:2c:f1:c1:98:81:42:ce:90:85:81: c2:35:7a:b7:1a:25:0f:8b:a6:98:fa:cd:1d:2e:1f: 2a:3a:07:c1:f7:08:76:19:40:5e:b9:42:16:56:99: d3:b3:75:f1:64:aa:3a:42:2d:2d:c5:9f:fc:c1:45: 76:45:48:f1:62:0b:e5:19:40:90:0a:d2:57:97:74: 94:ef:e5:ed:05:f8:cc:17:da:26:a6:58:c4:04:93: 89:ba:18:8e:a8:32:f4:62:43:3c:3c:47:b5:6c:71: 2f:40:64:36:d1:d0:20:4f:8d:e0:cd:e1:4e:25:b0: ad:b1:ea:b8:c2:95:c1:15:ab:52:2f:c8:04:b7:d0: e6:08:2d:e8:8b:d7:ba:51:b7:bc:6c:69:bb:a6:65: 9b:ba:25:9c:5c:9b:a8:1f:f8:6e:d0:da:c5:ca:4e: 0c:33:69:19:c1:2e:79:7b:e2:6f:c8:03:ed:81:6c: 13:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AC:92:9C:68:D1:8E:A4:E8:99:D2:27:22:55:0B:7E:A1:7D:38:70:F2 X509v3 Authority Key Identifier: keyid:68:BD:10:F1:B1:4B:BB:27:67:FF:DC:AE:C4:B4:17:28:80:BA:46:1A X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aL0Q8bFLuydn_9yuxLQXKIC6Rho.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/ade856-8960-4a29-8956-9fe7d928d9be/1/rJKcaNGOpOiZ0iciVQt-oX04cPI.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/ade856-8960-4a29-8956-9fe7d928d9be/1/aL0Q8bFLuydn_9yuxLQXKIC6Rho.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 193.107.40.0/22 Signature Algorithm: sha256WithRSAEncryption 1d:4a:98:22:e0:53:82:aa:8a:ce:96:e7:25:47:bf:1d:3a:56: ba:4f:89:b7:c7:71:ff:a6:0b:c9:e7:6e:52:0a:4a:74:d1:70: 5f:3a:3a:85:e9:53:45:ec:47:5f:87:82:f4:36:fd:1d:0a:12: 37:26:a8:99:9a:b1:43:7a:f5:ff:78:9a:78:e6:be:23:9e:33: c8:09:ea:b2:f1:a0:1a:80:9d:e7:1c:ad:3a:8b:7f:7c:71:69: 87:54:68:51:e3:0c:c4:d1:8e:c0:84:b3:c5:05:fa:b7:71:6a: d6:d1:72:58:e6:18:8f:ac:cc:26:11:d5:d3:3b:87:c9:bc:e9: 61:03:44:3e:9e:a6:47:e3:8e:1f:e4:58:0e:14:70:17:3b:57: 69:04:8f:e0:81:a3:65:50:05:31:c8:f9:d3:9d:ba:e1:b5:ba: 61:1f:17:ed:fd:05:5a:89:2e:00:39:3b:09:09:49:89:11:35: 22:4d:ea:ac:13:94:14:6f:01:0d:a6:2c:21:80:e3:2c:a0:0b: 0a:d6:34:be:51:29:fb:66:ae:c9:8f:5a:43:c3:e4:6e:e5:6c: c3:96:62:29:7c:46:0d:81:45:3d:bc:2b:92:3c:b6:83:bf:35: fe:d1:a1:33:32:15:a3:7c:1e:ce:58:10:3e:db:33:ae:57:3f: 8c:82:39:c7 -----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISAZt4NGL/80j3R0+RqQL4408QMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDY4YmQxMGYxYjE0YmJiMjc2N2ZmZGNhZWM0YjQxNzI4ODBi YTQ2MWEwHhcNMjYwMTAxMDYxNzM3WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhhYzkyOWM2OGQxOGVhNGU4OTlkMjI3MjI1NTBiN2VhMTdkMzg3MGYyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjG9kU8gvWsq0us9jPkT3QNHB9v8Q 93AtoIJOSAv9cVcej6imK7HXnSbQS0yQiUAHzsuKk3coErr8LvOfDAy43mJak1mI 0n+qEtY7c7MLeizxwZiBQs6QhYHCNXq3GiUPi6aY+s0dLh8qOgfB9wh2GUBeuUIW VpnTs3XxZKo6Qi0txZ/8wUV2RUjxYgvlGUCQCtJXl3SU7+XtBfjMF9ompljEBJOJ uhiOqDL0YkM8PEe1bHEvQGQ20dAgT43gzeFOJbCtseq4wpXBFatSL8gEt9DmCC3o i9e6Ube8bGm7pmWbuiWcXJuoH/hu0NrFyk4MM2kZwS55e+JvyAPtgWwTnQIDAQAB o4ICCTCCAgUwHQYDVR0OBBYEFKySnGjRjqTomdInIlULfqF9OHDyMB8GA1UdIwQY MBaAFGi9EPGxS7snZ//crsS0FyiAukYaMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvYUwwUThiRkx1eWRuXzl5dXhMUVhLSUM2UmhvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wZi9hZGU4NTYtODk2MC00YTI5LTg5NTYt OWZlN2Q5MjhkOWJlLzEvckpLY2FOR09wT2laMGljaVZRdC1vWDA0Y1BJLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wZi9hZGU4NTYtODk2MC00YTI5LTg5NTYtOWZlN2Q5MjhkOWJl LzEvYUwwUThiRkx1eWRuXzl5dXhMUVhLSUM2UmhvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCwWsoMA0G CSqGSIb3DQEBCwUAA4IBAQAdSpgi4FOCqorOluclR78dOla6T4m3x3H/pgvJ525S Ckp00XBfOjqF6VNF7Edfh4L0Nv0dChI3JqiZmrFDevX/eJp45r4jnjPICeqy8aAa gJ3nHK06i398cWmHVGhR4wzE0Y7AhLPFBfq3cWrW0XJY5hiPrMwmEdXTO4fJvOlh A0Q+nqZH444f5FgOFHAXO1dpBI/ggaNlUAUxyPnTnbrhtbphHxft/QVaiS4AOTsJ CUmJETUiTeqsE5QUbwENpiwhgOMsoAsK1jS+USn7Zq7Jj1pDw+Ru5WzDlmIpfEYN gUU9vCuSPLaDvzX+0aEzMhWjfB7OWBA+2zOuVz+MgjnH -----END CERTIFICATE-----Generated at Sun Jan 18 11:04:01 2026 by rpki-client